Exhibit D 

System. Firewall. Policy. Applicati nSetting 



jiiaroespace System. Firewall . Policy 

i< : ; : : • : :- --/:V':r r . ••/::.;.•. ... . . ... ;• .. ... : . , 

public class ApplicationSetting 

" < •••••• v : y : : } > • . ; / . . .. ... 

//by default, security level and trusted contacts will be set to be values returned 
//from GetDef aultSecurityLevel (user) and Def aultTrustedContacts . 
public App 1 i ca i ton S e 1 1 i ng( Appli ca t i on I D app , IPrincipal user) ; 

• ! ' ''■ .' •' "• '• ' " -• . \! : '•• V"' "•!!.".-' "'*' - :'.:: ; ,.:' k ;\. !. . ".• • ' .. ' 

public^ 

public IPrincipal User {get { } } 

public SecurityLevel SecurityLevel { get { } set { }'.} 
public ApplicationRuleCollection GetRules i) ; .-, v .. 



Property 


Parameters 


Application 


Description 


The application for which this application setting is about. 


Access 


Read Only 



Property 


Parameters 


User 


Description 


The user for which this application setting is specified. Together with 
the application field, it serves as the unique key for application settings. 


Access 


Read Only 



Property 


Parameters 


SecurityLevel 


Description 


The security level when this user uses this application. 


Access 


Read Write 



MAILABLE copy 



Method 


Mama 

name 




Parameters 


Application - The application to which this security level is to be applied. 

User - The user to which this security level is to be applied. 

Contacts - The list of remote contacts that is used when this security 
level is applied. 


Returns 


ApplicationRuleCollection 


Description 


Obtain the list of application rules that enforces the setting "using this 
security level with these remote contacts when this user uses this 
application". 



System. Firewall. Policy. SecurityLevel 



•name spac e Sy s tern . "Firewall . Policy 7 1:7 '7 7~ 77" ~ " """ 7" ' . .7; ~ ■ p ' - 

7 public class SecurityLevel :7 PolicyObject 

1 f 

1. v /^protected ApplicationRuleCollection ruleTemplates; 

j public SecurityLevel (ApplicationRuleCollection ruleTemplates) ; 

V ... ; 

publ i c App 1 i c a t i onRu 1 e Co 11 e c t: i on Templates 4 ^ { get { } } 



' 7'!R ,: S:: : ' ■ : 7-- - ; '7 



Property 


Parameters 


Templates 


Description 


The list of application rule templates that make of this security level. 


Access 


Read Only 



The reference of remote entities in a security level 
determines the setting for IPSec main mode key exchange. For 
example, if a trusted contact is an X509 certificate, the CA 
certificate for this contact will be treated as a trusted root 
certificate used in IKE negotiation. For the security 
reason, certificates, pre-shared keys and other credentials 
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will be not stored by the PFW service. Instead the should 
come from the dedicated windows security stores e.g. secure 
certificate store for certificates. 
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